Guessing we need 2 vlan's and a (inter-vlan) router. (or perhaps we can setup a pc/server with 3 networkcards that is cheaper...)
Posted on 2006-06-03
This week we came to the conclusion that we needed 2 (v)lan's within our company.
there are poeple who work in the office and machines we sell and devolp that also need to be attached to the network.
Since R&D wants to connect to those machines to do firmware upgrading/copying stuff, vlan seemed to be the answer.
R&D wants its own subnet with its own dhcp server but to be able to connect to all the machines in the other subnet.
Since R&D has its own department in the office and want to able to connect to the company network but also with the machines we needed to find a solution.
a solution where for example dhcp doens't interfear with the other subnet, machines can work idenpendtly but can connect to the other subnet and maybe internet to later...
Also the other way arround and maybe do some restriction in network ports and hosts or so...
currently we have got 4 main switches and a cisco pix 515 firewall that supports VLAN's and has 3 interfaces (with one expension slot)
1 x 3com 1100 (10mbit) (managed layer2 with vlan support)
1 x 3com 3300XM (10/100mbit) (managed layer2 with vlan support)
3 x 3com baseline switches unmanaged/ no vlan support 10/100.
4x 3com unmanagend office connect switches on the factory floor
Each network unit in the subnets must have its gateway on that subnet and since our pix firewall does the gatway work now, that needs to be re-posionted also.
The subnets need to be routed. how can we achieve this?
Since we only want 2 vlans/subnets do we still need a layer3 switch or router that is 2000 euro or can this be done easilyer and cheaper?
Maybe a windows 2000/2003 server that has routing capabilties and what if we put 3 network cards in that machine...
i guess we can use the older 1100 en 3300XM 3com switches. we are willing to sell those basslines switches and go for something new of this is nessary.
the 2 current vlan switches have a total of 48 ports together now
Most our outlets are directly patched to our main switches but there a few switches in the factory that are behind the main swiches.
If all those network units need to be on the factory subnet, keeping those old switches is ok i think.
What is the best routing solution for 2 vlan's and routing to the internet.?
Can a layer 3 switch do this or is a more advanced solution needed?
and also, what is the best and cheapest way? (windows/linux server or so...)?